- NG Firewall firmware versions 4.2.x, 5.0.x, 5.2.x
- netfence firmware versions 4.2.x
After a network failure, the remote management VPN tunnel is not re-established automatically.
The remote management system checks the status of the tunnel by probing defined "Reachable IPs" . If the defined IP addresses are not reachable, the management VPN tunnel is shut down and set up new.
When no "Reachable IPs" are defined, the system is unable to determine whether the remote management tunnel is working or not. Thus, the system cannot re-establish the tunnel after a network failure.
Enter probing IPs in the Reachable IPs field in the remote management configuration of the affected system via "Config" > "Box" > "Network" > "Management Access" > "Remote Management Tunnel" > "Tunnel Details" > "Reachable IPs" . These IP addresses should only be within reach of the management tunnel, otherwise the probing mechanism fails. It's a good idea to specify the server IP of the Management Centre or the IP address of a router as Reachable IPs.